Sign up for our weekly security newsletter

Microsoft has introduced a patch for virus in the Malware Protection Engine of Windows

A security patch has been released in Windows Malware Protection Engine to restore a flaw. If this glitch is left untreated, a memory defilement error has been occurred in the virus scanning tool which can hack your system.

National Cyber Security Centre in UK found a bug in the virus protection engine. The computers that have Windows 7, 8.1, 10, and Server 2016 are affected due to the vulnerability (CVE-2017-11937). As per Indian Express's post on 9/12/2017 The same fault was discovered by security specialist for project of Google, Tavis Ormandy in June 2017.

As per Microsoft, "to trigger the vulnerability the Malware Protection Engine checks the downloaded items for threats," reported by the registrar. On some computers this occurs automatically for every new file. Microsoft informed all the users to instantly install the upgraded security patch.

When a file containing virus enters a computer, while scanning in real time is turned on, it may allow the attacker to grab the control of the computer. Microsoft stated that this thing could occur automatically when such file enters the system.

A said by the company during its consultative FAQ, attackers adopt different techniques to place a specific crafted file in such a location from where Microsoft Malware Protection Engine can scan it. For instance, a hacker could take the help of a website to send the virus containing file to the victim's computer which is scanned while the website is viewed. Such virus containing file can send via email or directly from a messenger message by the attackers. The virus gets spread by opening the file.

Microsoft stated that, the hackers can take the privilege of a website that is eligible to receive or host the user given data to upload a virus containing files in a specific location. It is uploaded in such a location from where it can get scanned by the Malware Protection Engine which is operated by the hosting server.

As per the security consultant, the emergency patch by Microsoft tends to a basic remote code implementation vulnerability, which can be if a hacker can enter the Malware Protection Engineto check a virus containing files.

» SPAMfighter News - 12/15/2017

Dear Reader

We are happy to see you are reading our IT Security News.

We do believe, that the foundation for a good work environment starts with fast, secure and high performing computers. If you agree, then you should take a look at our Business Solutions to Spam Filter & Antivirus for even the latest version of Exchange Servers - your colleagues will appreciate it!